Trifecta Tech Foundation

NTS Pool at the IETF 123 Hackathon

Ruben and David are the champions (how cool is that?) for the NTS Pool session at the @ietf.org 123 Hackathon!

In parallel they will also work on NTPv5 interop testing and Network Time Security for PTP and CSPTP.

wiki.ietf.org/en/meeting/1...

#ietf123

sudo-rs Headed to Ubuntu Every day, system administrators all over the world ask their computers to perform security-sensitive tasks across privilege boundaries, such as a standard user executing a command as root. The softwa...

Our sudo-rs is headed to Ubuntu 25.10!

Write-up about the impact of the project and the collaboration with @tweedegolf.bsky.social and @ferroussystems.bsky.social, by our friends and project initiators at Prossimo:

www.memorysafety.org/blog/sudo-rs...

#rustlang #rust

sudo-rs Headed to Ubuntu Every day, system administrators all over the world ask their computers to perform security-sensitive tasks across privilege boundaries, such as a standard user executing a command as root. The softwa...

The success story of the memory-safe sudo-rs, the Rust implementation of the sudo command: www.memorysafety.org/blog/sudo-rs...

Thanks to Prossimo, Ferrous Systems and Trifecta Tech Foundation 🙏

@ferroussystems.bsky.social
@trifectatech.bsky.social

#rustlang #memorysafety #cybersecurity

Artwork of IETF 123 Madrid 19-25 July 2025

Trifecta Tech Foundation's David and Ruben in action at a PTP plugfest

Image announcement ntpd-rs support for Network Time Protocol version 5

David and Ruben are headed to Madrid for the 123rd @ietf.org meeting!
They'll join the NTP WG and work on NTP version 5, an NTS pool, and better time synchronization in general. Come find them to talk all-things-time!

More on NTPv5 & NTS: trifectatech.org/tags/ntpd-rs/

- Madrid 123 image by IETF

ntpd-rs now supports version 5 of the Network Time Protocol - Trifecta Tech Foundation

Time just got better!
ntpd-rs now optionally supports NTPv5, the next version of the Network Time Protocol.

trifectatech.org/blog/ntpd-rs...

#rustlang @sovereign.tech

Release Version 0.2.7 · trifectatechfoundation/sudo-rs To use the precompiled binaries attached below, consult our manual installation instructions Added Linux kernels older than 5.9 are now supported. Support for Defaults noexec/NOEXEC: on Linux syst...

A new release of sudo-rs is out! Highlights:
- Increased backwards compatibility with older Linux kernels.
- Programs executed can be prevented from running other programs (NOEXEC)
- Other usability improvements suggested and contributed by our users!

#rust #rustlang

github.com/trifectatech...

bzip2 crate switches from C to 100% rust - Trifecta Tech Foundation Today we published bzip2 version 0.6.0, which uses our rust implementation of the bzip2 algorithm, libbz2-rs-sys, by default. The bzip2 crate is now faster and easier to cross-compile.

Today we're switching the bzip2 crate from C to 100% rust:

trifectatech.org/blog/bzip2-c...

Thanks to: Alex Crichton and Radically Open Security, and to NLnet Foundation for funding the work through the e-Commons fund with financial support from @minbzk.bsky.social‬

#rustlang #rust

Ubuntu 25.10 Switches to Rust-based Sudo Ubuntu 25.10 will replace the sudo command with sudo-rs, a new Rust rewrite designed to improve memory safety and security. What does this mean for users?

ICYMI: Ubuntu 25.10 is to ship with a new version of 'sudo' written in Rust. #rustlang #ubuntu

Rust rewrites are kind of a long running joke in the world of Linux but soon you're not going to be able to escape them no matter how hard you try, Ubuntu 25... You Will Never Escape Rust Rewrites On Linux

We prefer to say "we'd love to be in your distro".

Nevertheless, a really good "sudo-rs explained" by @brodierobertson.xyz‬. Thanks!

www.youtube.com/watch?v=Le4i...

SIMD in zlib-rs (part 2): compare256 - Trifecta Tech Foundation In part 1 of the "SIMD in zlib-rs" series, we've seen that, with a bit of nudging, autovectorization can produce optimal code for some problems.

Our data compression projects aim to offer best-in-class performance.
@tweedegolf.bsky.social‬'s Folkert de Vries shows how SIMD helps us to speed up zlib-rs in compare256, a crucial part of the compression algorithm that finds repetitions in the input.

trifectatech.org/blog/simd-in...

#rustlang

Our sudo-rs work in The Register:

Look for us at the Trifecta Tech Foundation 'building blocks', near the Tweede golf booth!

@tweedegolf.bsky.social
@rustnl.bsky.social

Calling all Rust educators at RustWeek! Join us for the Rust Educators Speed Date at the Trifecta Tech Foundation table on Wednesday 14 May, 11.00am.

Teach-rs maintainers Tamme and Marc would love to hear both your battle stories and questions about teaching Rust.

#rustlang #RustWeek #education

Rust Foundation Associate Member Announcement | May 2025 - The Rust Foundation DOVER, DELAWARE, May 6, 2025 –The Rust Foundation, an independent, nonprofit organization dedicated to advancing the performance, safety, and sustainability of the Rust programming language, is…

Trifecta Tech Foundation is now a member of the @rustfoundation.org !

Why? We believe that software must become safer; that this is paramount in critical infrastructure; and that #rustlang is an outstanding choice of technology for this purpose.

rustfoundation.org/media/rust-f...

Memory-safe sudo to become the default in Ubuntu - Trifecta Tech Foundation May 6, 2025 – Ubuntu 25.10 is set to adopt sudo-rs by default. Sudo-rs is a memory-safe reimplementation of the widely-used sudo utility, written in the Rust programming language.

* Announcement * Memory-safe sudo to become the default in Ubuntu!

@canonicalltd.bsky.social is supporting us to get sudo-rs ready for Ubuntu 25.10. 

trifectatech.org/blog/memory-...

use `zlib-rs` for gzip compression in rust code by folkertdev · Pull Request #15417 · rust-lang/cargo What does this PR try to resolve? This PR uses zlib-rs via the flate2 crate. It is used for (de)compressing gzip files (e.g. in cargo package). Using zlib-rs is significantly faster, and produces o...

We're happy to see adoption for zlib-rs skyrocketing. Especially stoked about rust tooling like cargo, gitoxide and rustup 🚀

Special thanks to @josh.social.joshtriplett.org.ap.brid.gy

github.com/rust-lang/ca...
github.com/rust-lang/ru...
github.com/GitoxideLabs...

Release v0.5.0 · trifectatechfoundation/zlib-rs This is technically a breaking change, but unless you rely on rust exporting C symbols, you should not run into any issues when upgrading. highlights the export-symbols feature now controls whethe...

New release: zlib-rs 0.5.0 🎉
We now allow using zlib-rs together with stock zlib or zlib-ng in the same project.

This is a **breaking change** if you relied on Rust exporting C symbols. The export-symbols flag preserves the previous behavior.

github.com/trifectatech...

#rustlang #rust

Release Version 0.2.5 · trifectatechfoundation/sudo-rs To use the precompiled binaries attached below, consult our manual installation instructions Added sudo visudo will protect you from accidentally locking yourself out Support for --prompt and SUDO...

New: sudo-rs supports FreeBSD + (highly anticipated!) "--bell" 🔔

Also in this release: the first contribution (bugfix) by Todd Miller, the maintainer of the original sudo - thank you!

More thanks to our funder NLnet Foundation and our maintainers Marc and Bjorn.

github.com/trifectatech...

Carefully But Purposefully Oxidising Ubuntu Last month I published Engineering Ubuntu For The Next 20 Years, which outlines four key themes for how I intend to evolve Ubuntu in the coming years. In this post, I’ll focus on “Modernisation”.…

sudo-rs might become the default in future Ubuntu releases!

The details from Ubuntu VP of Engineering Jon Seager: buff.ly/axxif1t

Our team, Marc, Bjorn, Ruben and Marlon are core contributors of sudo-rs, which is now part of Trifecta Tech Foundation.

#rustlang #riir

It's underway! The week of #IETF122 Bangkok hosted by Juniper Networks has kicked off with the #IETFHackathon. Select sessions are streamed live and all sessions are available on demand after the meeting. Find links and more information at: www.ietf.org/live/

Migrate to `zlib-rs` (again) by charliermarsh · Pull Request #11894 · astral-sh/uv Summary I believe zlib-rs is now a better choice on ARM and x86, so I'm just going to assume it's a better choice everywhere. It's much easier to build (removes our CMake dependency), a...

zlib-rs is now used in uv!
uv is the extremely fast Python package & project manager with over 200M requests/day.

Not only are we happy about the adoption but also grateful for Astral and @crmarsh.com stepping up and supporting us through a GitHub sponsorship. Thanks!

Huge news in this article by Ubuntu VP of Engineering @jnsgr.uk:
Our sudo-rs and @uutils.bsky.social may become the default in Ubuntu in the future, as part of their strategy to move to memory safe code.

discourse.ubuntu.com/t/carefully-...

Translating bzip2 with c2rust - Trifecta Tech Foundation Over the past couple of months we've been hard at work on libbzip2-rs, a 100% Rust drop-in compatible implementation the bzip2 compression and decompression functionality.

libbz2 is a 100% rust drop-in compatible implementation of the bzip2 compression library.

We've translated it from the C original using c2rust.
Check out Folkert's blog on our experience:

Release Version 1.5.0 · pendulum-project/ntpd-rs This releases fixes two related low severity vulnerabilities in our NTS cookie parsing, please see the related advisory. Added Support for PPS based sources (this support can be disabled with a co...

New release of ntpd-rs, our Network Time Protocol implementation!

Includes support for PPS (pulse per second) based sources. Fixes two low severity vulnerabilities in our NTS cookie parsing, found through YesWeHack's Bug Bounty program, supported by @sovereign.tech.

New release of sudo-rs, the memory safe implementation of sudo and su.

Includes experimental support for FreeBSD and improved compatibility between sudo-rs and sudo.

Special thanks to NLnet Foundation & Todd Miller, the maintainer of sudo.

github.com/trifectatech...

zlib-rs is faster than C - Trifecta Tech Foundation We've released version 0.4.2 of zlib-rs, featuring a number of substantial performance improvements. We are now (to our knowledge) the fastest api-compatible zlib implementation for decompression,…

New release of zlib-rs!
We are now (to our knowledge) the fastest zlib implementation, beating C implementations like zlib-ng.

What is zlib? zlib likely (de)compressed the page you're reading right now!

Trifecta Tech Foundation is proud to join Nonprofit Cyber!

Nonprofit Cyber is a first-of-its-kind coalition of global nonprofit organizations to enhance joint action to improve cybersecurity. 

nonprofitcyber.org/for-its-thir...

Release Version 0.4.1 · trifectatechfoundation/zlib-rs A minor release, but with some nice goodies. We now support building C-compatible dynamic libraries with cargo c. The readme of the libz-rs-sys-cdylib crate has all the details. Additionally, perfo...

zlib-rs is our implementation of zlib, part of our Data compression initiative.

The projects are designed to be drop-in replacements for existing C implementations, while providing memory safety and on-par performance.

The latest release of zlib-rs:

Home - Trifecta Tech Foundation - Trifecta Tech Foundation The Internet, and our vital systems for water, energy, and communication, require safe software - free from for-profit motives.

Hello world! Trifecta Tech Foundation is a brand-new nonprofit organization that develops and maintains #opensource infrastructure software.

We are the long-term home for projects like sudo, zlib, OpenADR and Network Time Protocol in Rust, and ecosystem projects such as teach-rs.